* SECURITY UPDATE: regression with tls_session_secret_cb (LP: #1329297)
- debian/patches/CVE-2014-0224.patch: set the CCS_OK flag when using
tls_session_secret_cb for session resumption in ssl/s3_clnt.c.
-- Marc Deslauriers <email address hidden> Thu, 12 Jun 2014 08:30:56 -0400
This bug was fixed in the package openssl - 1.0.1-4ubuntu5.15
---------------
openssl (1.0.1-4ubuntu5.15) precise-security; urgency=medium
* SECURITY UPDATE: regression with tls_session_ secret_ cb (LP: #1329297) patches/ CVE-2014- 0224.patch: set the CCS_OK flag when using session_ secret_ cb for session resumption in ssl/s3_clnt.c.
- debian/
tls_
-- Marc Deslauriers <email address hidden> Thu, 12 Jun 2014 08:30:56 -0400